Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/2IEvmSJvwjBsiaccxpS78rjL3pw.roa
File: 2IEvmSJvwjBsiaccxpS78rjL3pw.roa (raw, json)
Hash identifier: Ey3hv7ph0SnmWU0BwaDa54UhEE/KidnA9o+L8TrhRW4=
Subject key identifier: D8:81:2F:99:22:6F:C2:30:6C:89:A7:1C:C6:94:BB:F2:B8:CB:DE:9C
Certificate issuer: /CN=da6525de4aa6d0ca1ae7bd8ee1e35bfd269649bb
Certificate serial: 01866EB4F269B3495FCEBAF3BD67DBC725C5
Authority key identifier: DA:65:25:DE:4A:A6:D0:CA:1A:E7:BD:8E:E1:E3:5B:FD:26:96:49:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2mUl3kqm0Moa572O4eNb_SaWSbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/2IEvmSJvwjBsiaccxpS78rjL3pw.roa
Signing time: Mon 20 Feb 2023 12:03:17 +0000
ROA not before: Mon 20 Feb 2023 12:03:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49273
IP address blocks: 188.113.227.0/24 maxlen: 24
188.113.230.0/24 maxlen: 24
188.113.231.0/24 maxlen: 24
188.113.228.0/24 maxlen: 24
188.113.229.0/24 maxlen: 24
188.113.233.0/24 maxlen: 24
188.113.232.0/24 maxlen: 24
188.113.234.0/24 maxlen: 24
188.113.237.0/24 maxlen: 24
188.113.238.0/24 maxlen: 24
188.113.235.0/24 maxlen: 24
188.113.236.0/24 maxlen: 24
188.113.240.0/24 maxlen: 24
188.113.239.0/24 maxlen: 24
188.113.241.0/24 maxlen: 24
188.113.247.0/24 maxlen: 24
188.113.248.0/24 maxlen: 24
188.113.192.0/24 maxlen: 24
188.113.195.0/24 maxlen: 24
188.113.196.0/24 maxlen: 24
188.113.193.0/24 maxlen: 24
188.113.194.0/24 maxlen: 24
188.113.199.0/24 maxlen: 24
188.113.197.0/24 maxlen: 24
188.113.198.0/24 maxlen: 24
188.113.202.0/24 maxlen: 24
188.113.203.0/24 maxlen: 24
188.113.200.0/24 maxlen: 24
188.113.201.0/24 maxlen: 24
188.113.206.0/24 maxlen: 24
188.113.204.0/24 maxlen: 24
188.113.205.0/24 maxlen: 24
188.113.209.0/24 maxlen: 24
188.113.210.0/24 maxlen: 24
188.113.207.0/24 maxlen: 24
188.113.208.0/24 maxlen: 24
188.113.213.0/24 maxlen: 24
188.113.211.0/24 maxlen: 24
188.113.212.0/24 maxlen: 24
188.113.218.0/24 maxlen: 24
188.113.219.0/24 maxlen: 24
188.113.216.0/24 maxlen: 24
188.113.217.0/24 maxlen: 24
188.113.214.0/24 maxlen: 24
188.113.215.0/24 maxlen: 24
188.113.224.0/24 maxlen: 24
188.113.221.0/24 maxlen: 24
188.113.222.0/24 maxlen: 24
188.113.226.0/24 maxlen: 24
188.113.225.0/24 maxlen: 24
185.208.177.0/24 maxlen: 24
185.208.176.0/24 maxlen: 24
185.208.178.0/24 maxlen: 24
185.208.179.0/24 maxlen: 24
2a02:f7c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 Feb 2023 07:12:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6e:b4:f2:69:b3:49:5f:ce:ba:f3:bd:67:db:c7:25:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6525de4aa6d0ca1ae7bd8ee1e35bfd269649bb
Validity
Not Before: Feb 20 12:03:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8812f99226fc2306c89a71cc694bbf2b8cbde9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:12:2f:e1:5a:0f:71:c2:8e:2d:d3:4c:78:ec:
5d:96:2e:cf:99:9e:39:d7:a9:0c:35:7a:2d:17:33:
66:73:31:93:10:4e:0b:34:84:60:7c:73:29:f3:2b:
48:5c:33:27:a0:ec:e6:94:2a:a6:ce:ad:d9:71:8b:
f3:88:5a:72:8b:e3:e7:f9:fb:57:99:d8:79:7e:b0:
1d:c0:ce:30:5d:d4:a2:2a:54:93:cf:fd:f2:d6:75:
5f:d1:c4:57:90:ff:13:a1:85:cf:dc:48:12:a5:29:
53:51:19:fa:68:02:b2:5a:53:8e:1e:60:f3:49:2f:
70:2c:10:cc:2a:56:74:33:ed:28:6a:15:63:46:30:
37:1c:fe:ca:48:ee:bc:6c:a1:b6:20:bc:71:26:fa:
69:00:f0:91:12:ca:97:31:25:0b:17:57:ea:e6:f2:
bf:d0:ab:59:f4:15:5e:a7:22:81:eb:93:24:a5:cd:
41:1a:6f:80:5f:fb:e7:b0:d9:a5:ab:63:72:75:b1:
64:64:16:ce:47:06:4a:e4:a5:e2:83:fe:d7:f4:a9:
58:bf:72:44:de:5a:d4:fd:93:fb:1e:1e:45:30:4b:
79:4b:fb:dc:98:ea:60:e3:90:ba:af:7f:34:cb:ae:
7d:d4:79:b0:e5:26:ec:9b:67:17:c7:9d:3b:d0:eb:
1b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:81:2F:99:22:6F:C2:30:6C:89:A7:1C:C6:94:BB:F2:B8:CB:DE:9C
X509v3 Authority Key Identifier:
keyid:DA:65:25:DE:4A:A6:D0:CA:1A:E7:BD:8E:E1:E3:5B:FD:26:96:49:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2mUl3kqm0Moa572O4eNb_SaWSbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/2IEvmSJvwjBsiaccxpS78rjL3pw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/ac567d-46d2-4081-94ef-eedf76077f09/1/2mUl3kqm0Moa572O4eNb_SaWSbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.176.0/22
188.113.192.0-188.113.219.255
188.113.221.0-188.113.222.255
188.113.224.0-188.113.241.255
188.113.247.0-188.113.248.255
IPv6:
2a02:f7c0::/32
Signature Algorithm: sha256WithRSAEncryption
9a:75:d1:f8:84:45:d7:4f:c4:d2:4c:ee:48:d0:36:a1:36:31:
99:af:c5:a5:ad:9a:26:f3:42:8b:48:8c:0e:9a:46:18:04:a2:
3b:f2:a5:18:ff:9e:98:9b:29:76:71:f0:d5:99:a8:15:25:8e:
df:3a:b4:28:cb:11:9d:2a:bf:c9:08:00:7b:ba:46:1e:85:6d:
5d:57:de:55:dc:ff:ff:3a:b3:5d:9b:65:7b:df:e5:22:ae:ea:
79:f2:eb:9b:10:31:b2:3d:92:f6:11:9a:dc:09:c7:76:41:cf:
54:21:7e:d3:c5:91:b7:ac:d2:e1:00:2c:a9:c0:31:9a:60:77:
ac:a8:47:7d:1a:f8:7f:a6:0c:3a:ba:a6:9d:98:36:12:b5:45:
59:60:aa:a7:e9:d6:af:57:d2:a9:6e:18:2a:ea:6c:26:d7:cc:
90:91:29:71:ea:e8:dc:e2:7d:19:ae:e5:0b:3f:90:54:22:39:
bc:1f:4b:77:34:c5:24:a3:20:00:a1:a0:ca:02:a0:69:15:e3:
bc:29:ed:f0:aa:9c:ef:1a:e2:08:f1:55:25:94:bf:20:f5:81:
74:88:85:20:75:96:b7:4c:7d:93:ba:74:7b:62:3b:9f:6b:83:
f2:6f:9b:10:f5:64:37:b5:5b:58:f5:76:ca:38:f2:fa:b6:60:
c3:69:e7:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:47 2024 by rpki-client on console-fra.rpki-client.org